Section 1
HIPAA Privacy Rule and Security Rule The Privacy Rule applies to protected health information (PHI) or health information that can help identify an individual, created or received by covered entities (CE), which include health plans, clearinghouses, Medicare prescription drug sponsors, and health care providers who electronically transmit information. However, the employees of these covered entities are excluded from this while the business associates of these covered entities are subject to some provisions of the rule. The use and disclosure of PHI by the covered entities requires written authorization by the individual as it is governed by the Privacy Rule ...